njrat | 66141d6874e334e2d2f8f0e8f8b54e8a6fc788fd43b4d9f510c78b78b9ac3cbd | Triage

Submit
Reports

Overview

overview

Static

static

66141d6874...bd.exe

windows7-x64

66141d6874...bd.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

66141d6874e334e2d2f8f0e8f8b54e8a6fc788fd43b4d9f510c78b78b9ac3cbd.exe

Resource

win7-20221111-en

njrat hacked evasion persistence trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

66141d6874e334e2d2f8f0e8f8b54e8a6fc788fd43b4d9f510c78b78b9ac3cbd.exe

Resource

win10v2004-20220812-en

njrat hacked evasion persistence trojan

windows10-2004-x64

8 signatures

150 seconds

General

Target

66141d6874e334e2d2f8f0e8f8b54e8a6fc788fd43b4d9f510c78b78b9ac3cbd
Size

23KB
MD5

2911662ed2a81921a15f8974f7c0626b
SHA1

5bb9edf43c2f247f6d1a3d2f418c8e095a9b0a14
SHA256

66141d6874e334e2d2f8f0e8f8b54e8a6fc788fd43b4d9f510c78b78b9ac3cbd
SHA512

7f39deb5a894f3f59ae19ceb1ce6971f22635f1274fd0dbe683d2acc5784e781415542bbb710391509b757f151e14594def3d3116d4d61bdfd3aa6010274a729
SSDEEP

384:AQeCo2zmZbQHkJeCdUwBvQ61gjuQBnB9mRvR6JZlbw8hqIusZzZHjb:n5yBVd7Rpcnuo

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

sahinerol1.no-ip.org:1221

Mutex

dc3fcc213130c10fcc359eeec1ff3b0f

Attributes

reg_key
dc3fcc213130c10fcc359eeec1ff3b0f
splitter
|'|'|

Signatures

Njrat family
njrat

Files

66141d6874e334e2d2f8f0e8f8b54e8a6fc788fd43b4d9f510c78b78b9ac3cbd
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy